flagger
flagger copied to clipboard
fluxcd
Feat: Add support for stickiness for primary deployment in Istio
Summary
Adding support to configure stickiness for primary deployment for Istio Provider.
Currently the implementation is only available for Gateway API provider.
Changes
- Adds
primarySessionAffinityCookiefield to Canary CRD status. - Update this field in Gateway API Router.
- Adds support for stickiness for primary deployment in Istio Router.
Testing
- Init workloads
bash test/workloads/init.sh
- Create Canary resource
apiVersion: flagger.app/v1beta1
kind: Canary
metadata:
name: podinfo
namespace: test
spec:
targetRef:
apiVersion: apps/v1
kind: Deployment
name: podinfo
progressDeadlineSeconds: 60
service:
port: 9898
portDiscovery: true
skipAnalysis: false
analysis:
interval: 15s
threshold: 15
maxWeight: 30
stepWeight: 10
sessionAffinity:
cookieName: canary-cookie
primaryCookieName: primary-cookie
webhooks:
- name: load-test
url: http://flagger-loadtester.test/
timeout: 5s
metadata:
type: cmd
cmd: "hey -z 10m -q 10 -c 2 http://podinfo.test:9898/"
logCmdOutput: "true"
- Trigger canary release
kubectl -n test set image deployment/podinfo podinfod=ghcr.io/stefanprodan/podinfo:6.0.1
- Wait for canary to advance and check VirtualService routes
> kubectl get vs -n test podinfo -o yaml
apiVersion: networking.istio.io/v1beta1
kind: VirtualService
metadata:
annotations:
helm.toolkit.fluxcd.io/driftDetection: disabled
kustomize.toolkit.fluxcd.io/reconcile: disabled
creationTimestamp: "2025-11-18T18:38:03Z"
generation: 2
name: podinfo
namespace: test
ownerReferences:
- apiVersion: flagger.app/v1beta1
blockOwnerDeletion: true
controller: true
kind: Canary
name: podinfo
uid: 6fbb4630-5a6b-4da3-9586-2ab2878da3a8
resourceVersion: "13705"
uid: 8c53a556-1a69-4eb3-bb9b-2679de6b7988
spec:
gateways:
- mesh
hosts:
- podinfo
http:
- match:
- headers:
Cookie:
regex: .*canary-cookie.*PPFpqKsygO.*
route:
- destination:
host: podinfo-primary
weight: 0
- destination:
host: podinfo-canary
weight: 100
- match:
- headers:
Cookie:
regex: .*primary-cookie.*QvKdhlCQZb.*
route:
- destination:
host: podinfo-primary
weight: 100
- destination:
host: podinfo-canary
weight: 0
- route:
- destination:
host: podinfo-primary
headers:
response:
add:
Set-Cookie: primary-cookie=QvKdhlCQZb; Max-Age=15
weight: 90
- destination:
host: podinfo-canary
headers:
response:
add:
Set-Cookie: canary-cookie=PPFpqKsygO; Max-Age=86400
weight: 10
Codecov Report
:x: Patch coverage is 90.75630% with 11 lines in your changes missing coverage. Please review.
:white_check_mark: Project coverage is 30.01%. Comparing base (12ee6cb) to head (70c4c52).
:warning: Report is 69 commits behind head on main.
| Files with missing lines | Patch % | Lines |
|---|---|---|
| pkg/router/istio.go | 91.81% | 5 Missing and 4 partials :warning: |
| pkg/apis/flagger/v1beta1/canary.go | 0.00% | 2 Missing :warning: |
Additional details and impacted files
@@ Coverage Diff @@
## main #1861 +/- ##
==========================================
- Coverage 39.44% 30.01% -9.43%
==========================================
Files 287 287
Lines 22706 18460 -4246
==========================================
- Hits 8956 5541 -3415
+ Misses 12777 12188 -589
+ Partials 973 731 -242
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
:rocket: New features to boost your workflow:
- :snowflake: Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
@stefanprodan Thank you for your review. Added a similar comment like the one for Gateway API Session Affinity.